11db9381da05570a6d6958f6d79a6685

Sharing

Copy URL Twitter E-mail

General

Target

11db9381da05570a6d6958f6d79a6685
Size

29KB
MD5

11db9381da05570a6d6958f6d79a6685
SHA1

670522c1fe293f53de27f5467cc4cbc512687417
SHA256

83a74e9d6dc1f076ca90c08a878426d0086e110570897541c33c348d34978513
SHA512

c0752692399fdff1784855f8a11231e5a4c313cb6ea3d92e9852c04bab2d1b7e675823911a822e02d554762358f0ddde21d1943a72d0d02f374bb069c50951de
SSDEEP

384:516FlajzBScRiOelvgCHS2pSiPP64srbTolXWpcztyYgyVaTAxMUhTaQzT8uY:0laneOeGJe6rUlacztyDyzMhQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
11db9381da05570a6d6958f6d79a6685

Files

11db9381da05570a6d6958f6d79a6685
.exe windows:4 windows x86 arch:x86

1c825832993b9aec65d9147ab9f6f346

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
ClearCommError
CloseHandle
CloseProfileUserMapping
CommConfigDialogA
CompareFileTime
CreateEventA
CreateFiber
CreateMutexA
CreateWaitableTimerA
EnumResourceTypesW
EnumSystemCodePagesA
EscapeCommFunction
ExitProcess
ExpungeConsoleCommandHistoryA
FormatMessageA
FormatMessageW
FreeEnvironmentStringsW
GenerateConsoleCtrlEvent
GetACP
GetCommMask
GetCommProperties
GetCommandLineW
GetConsoleAliasesW
GetConsoleAliasesLengthA
GetConsoleCommandHistoryLengthW
GetConsoleInputWaitHandle
GetConsoleTitleA
GetConsoleWindow
GetCurrentDirectoryA
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetDefaultCommConfigA
GetDriveTypeW
GetFileTime
GetFullPathNameA
GetLastError
GetLocalTime
GetLocaleInfoA
GetLocaleInfoW
GetLogicalDriveStringsA
GetModuleFileNameW
GetModuleHandleW
GetNamedPipeHandleStateW
GetPrivateProfileIntA
GetProcessWorkingSetSize
GetStartupInfoW
GetStdHandle
GetSystemDirectoryA
GetSystemTime
GetTapeStatus
GetTempFileNameA
GetVDMCurrentDirectories
GetVersion
GlobalFree
GlobalGetAtomNameA
HeapAlloc
HeapFree
IsBadWritePtr
LocalFree
MapViewOfFileEx
MoveFileW
MoveFileExW
OpenMutexW
OpenProfileUserMapping
PeekNamedPipe
Process32Next
QueryPerformanceCounter
ReadConsoleInputExW
ReadProcessMemory
RegisterWowBaseHandlers
RtlZeroMemory
SetConsoleCursorInfo
SetConsoleOutputCP
SetEnvironmentVariableA
SetEnvironmentVariableW
SetHandleCount
SetLastError
SetStdHandle
SetVolumeLabelW
Thread32Next
UnhandledExceptionFilter
VerifyConsoleIoHandle
VirtualProtect
WideCharToMultiByte
lstrcatW
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrlenA

user32

ActivateKeyboardLayout
AdjustWindowRectEx
BroadcastSystemMessageW
CallNextHookEx
CascadeChildWindows
ChangeClipboardChain
ChangeDisplaySettingsExA
CharLowerW
CharUpperA
CharUpperW
CheckMenuRadioItem
ClientToScreen
CopyAcceleratorTableW
CreateAcceleratorTableA
DdeAbandonTransaction
DdeConnectList
DdeQueryStringA
DdeSetUserHandle
DefWindowProcW
DragDetect
DrawCaption
DrawFrameControl
DrawMenuBar
EnumDisplaySettingsExA
EnumPropsExA
GetActiveWindow
GetClipCursor
GetCursor
GetCursorInfo
GetFocus
GetForegroundWindow
GetGUIThreadInfo
GetMenu
GetMenuItemInfoW
GetMessageExtraInfo
GetParent
GetWindowContextHelpId
GetWindowDC
GetWindowInfo
GetWindowTextA
GrayStringW
InSendMessage
InsertMenuItemA
IsClipboardFormatAvailable
IsDialogMessageW
LoadIconW
LoadMenuA
MessageBoxIndirectA
MsgWaitForMultipleObjects
OemToCharA
OffsetRect
PostQuitMessage
RegisterClipboardFormatA
RegisterWindowMessageW
SendNotifyMessageA
SetCaretPos
SetForegroundWindow
SetMessageQueue
SetPropW
SetWindowContextHelpId
SetWindowRgn
ShowOwnedPopups
ShowWindow
WINNLSEnableIME
WaitForInputIdle
wsprintfW

gdi32

CreateBrushIndirect
CreateDiscardableBitmap
CreateFontIndirectW
CreatePalette
DeleteDC
DeviceCapabilitiesExW
EnumFontsA
EnumICMProfilesW
EnumObjects
ExtCreateRegion
ExtTextOutA
FillPath
FlattenPath
FrameRgn
GdiComment
GdiGetBatchLimit
GetArcDirection
GetBkColor
GetBkMode
GetBoundsRect
GetCharacterPlacementW
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetDCOrgEx
GetEnhMetaFilePixelFormat
GetMetaFileW
GetPaletteEntries
GetPixel
GetROP2
GetStockObject
GetTextCharset
OffsetClipRgn
OffsetWindowOrgEx
PlayMetaFile
PtVisible
ResetDCA
RestoreDC
SelectBrushLocal
SetColorSpace
SetDIBits
SetICMMode
SetPixelV
SetPolyFillMode
SetWindowOrgEx
StartPage
StretchDIBits
SwapBuffers
UpdateColors

Sections

.text
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bhtv
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c825832993b9aec65d9147ab9f6f346

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 6KB

.data Size: 17KB - Virtual size: 26KB

.bhtv Size: 4KB - Virtual size: 16KB

.reloc Size: 1024B - Virtual size: 5KB

.text
Size: 5KB - Virtual size: 6KB

.data
Size: 17KB - Virtual size: 26KB

.bhtv
Size: 4KB - Virtual size: 16KB

.reloc
Size: 1024B - Virtual size: 5KB